CVE-2020-3442
The CVE-2020-3442 entry describes DuoConnect tokens that authenticate SSH sessions via a DNG. If the -relay argument begins with http://, authentication tokens may be transmitted over an insecure HTTP connection, exposing them to network sniffing during the initial login or when reusing an existi...